All 11 CVE vulnerabilities found in NGINX Plus, with AI-generated Chinese analysis, references, and POCs.
Vendor: F5
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-9256 | NGINX ngx_http_rewrite_module vulnerability CWE-122 | 8.1 | High | 2026-05-22 |
| CVE-2026-42946 | NGINX ngx_http_scgi_module and ngx_http_uwsgi_module vulnerability CWE-789 | 6.5 | Medium | 2026-05-13 |
| CVE-2026-40460 | NGINX ngx_quic_module vulnerability CWE-290 | 6.5 | Medium | 2026-05-13 |
| CVE-2026-42934 | NGINX ngx_http_charset_module vulnerability CWE-125 | 4.8 | Medium | 2026-05-13 |
| CVE-2026-42945 | NGINX ngx_http_rewrite_module vulnerability CWE-122 | 8.1 | High | 2026-05-13 |
| CVE-2026-40701 | NGINX ngx_http_ssl_module vulnerability CWE-416 | 4.8 | Medium | 2026-05-13 |
| CVE-2025-53859 | NGINX ngx_mail_smtp_module vulnerability CWE-125 | 3.7 | Low | 2025-08-13 |
| CVE-2024-39792 | NGINX Plus MQTT vulnerability CWE-825 | 7.5 | High | 2024-08-14 |
| CVE-2024-24989 | NGINX HTTP/3 QUIC vulnerability CWE-476 | 7.5 | High | 2024-02-14 |
| CVE-2024-24990 | NGINX HTTP/3 QUIC vulnerability CWE-416 | 7.5 | High | 2024-02-14 |
| CVE-2022-41743 | NGINX ngx_http_hls_module vulnerability CVE-2022-41743 CWE-787 | 7.0 | High | 2022-10-19 |
All 11 known CVE vulnerabilities affecting NGINX Plus with full Chinese analysis, references, and POCs where available.